$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: ind0+y75qs+hJOak3ID5NZvH8tZFTViQ3YDx9j5+Sr4= Subject key identifier: F5:D0:60:8D:3F:D0:9A:48:67:47:3F:D0:3C:62:24:91:CE:93:EE:AD Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 064A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 0643 Signing time: Mon 12 May 2025 22:22:37 +0000 Manifest this update: Mon 12 May 2025 22:22:37 +0000 Manifest next update: Mon 19 May 2025 22:22:37 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: z0BRoEF02SYDdp51nuvsphFGi8TIVd4u6R2HaFoolLA=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 1444bb5xjFLOm1pP6Amz/K/2h6LYyRRZNFd2Apyax+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: May 12 22:22:37 2025 GMT Not After : May 19 22:22:37 2025 GMT Subject: CN=682274ad-ef08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:c1:5f:c2:08:10:9a:f4:c7:b5:82:86:b4: 9c:5b:4f:19:7e:ce:db:69:7a:9d:98:ec:33:cd:5b: 43:80:e7:a0:92:bc:af:cb:53:6a:fd:c3:c4:58:9e: e7:b5:99:ee:27:25:a5:1b:74:fb:03:e2:fb:8e:a6: 27:11:d2:51:6a:53:44:1e:c8:a2:71:bb:5d:36:5e: eb:5b:40:92:e8:35:6d:b0:a2:a5:ca:27:30:a8:b2: b9:f8:2b:b8:e7:ba:4f:1b:71:d2:ef:a2:fe:a7:c1: a0:04:d6:53:bf:d1:ba:8d:11:ac:80:77:97:d9:6f: 06:cf:5e:9f:5a:a4:73:4b:34:5f:56:4a:26:04:83: bd:08:2b:c7:33:fe:c4:59:39:a2:03:94:4f:ba:38: ea:a7:f7:60:f8:ad:5a:2e:40:bd:99:62:d6:5d:69: 82:2a:0f:01:42:94:e2:1a:df:8c:57:da:9e:a1:d1: f8:ee:0d:4b:ff:49:9d:bd:92:10:c0:03:67:88:d7: bc:6f:36:25:8d:60:2a:82:7c:21:73:74:94:07:3c: d1:e9:d1:c4:6d:d7:43:4a:cc:16:f4:2c:af:7b:96: d3:56:a0:5d:a7:02:db:00:4d:31:37:78:cd:49:e7: 64:f1:b7:57:4d:8b:f5:82:c8:f9:a9:e4:27:00:7d: af:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D0:60:8D:3F:D0:9A:48:67:47:3F:D0:3C:62:24:91:CE:93:EE:AD X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ac:5f:33:96:5a:13:00:f9:cb:80:d3:9f:ba:8d:7d:71:dd: b9:79:35:49:35:12:3c:c5:18:cd:2a:88:06:e5:95:64:86:2b: ab:e7:7b:39:01:d7:b3:0e:38:51:85:90:61:a3:3a:67:f4:d1: 2d:83:db:cb:ef:34:28:ec:d2:36:89:b4:3f:bf:af:d1:21:54: 6f:88:2b:46:6c:28:71:58:21:83:ec:17:64:c0:1c:ac:96:b8: ea:a2:6c:36:f8:33:ec:0b:d8:22:16:12:d8:92:63:4e:71:eb: 47:80:cb:38:5a:d4:1b:43:76:cf:2a:d6:84:ac:55:b2:b4:27: 1d:eb:8a:32:a6:8a:18:f0:8a:f0:59:1f:51:af:80:17:f9:3e: b8:a6:86:96:cf:2a:1d:30:cf:6a:78:10:54:c6:b2:73:b4:f1: 3b:ee:a1:42:5d:37:48:0c:a0:c1:fa:fa:b5:a4:e3:72:1e:75: 7c:34:f6:00:89:b6:c3:40:ed:aa:56:ac:b0:24:1a:0c:a0:ea: b6:db:02:5c:6e:74:64:1f:50:a9:25:00:f9:f5:38:5a:fb:de: 61:ac:7c:7b:02:9f:74:51:83:1e:15:1b:04:4f:59:b9:c4:21: 77:ab:d3:95:9d:36:24:55:a2:ec:73:c3:bd:05:ec:5c:14:18: d7:cd:2d:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwNTEyMjIyMjM3WhcNMjUwNTE5MjIyMjM3WjAYMRYwFAYD VQQDEw02ODIyNzRhZC1lZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+HBX8IIEJr0x7WChrScW08Zfs7baXqdmOwzzVtDgOegkryvy1Nq/cPEWJ7n tZnuJyWlG3T7A+L7jqYnEdJRalNEHsiicbtdNl7rW0CS6DVtsKKlyicwqLK5+Cu4 57pPG3HS76L+p8GgBNZTv9G6jRGsgHeX2W8Gz16fWqRzSzRfVkomBIO9CCvHM/7E WTmiA5RPujjqp/dg+K1aLkC9mWLWXWmCKg8BQpTiGt+MV9qeodH47g1L/0mdvZIQ wANniNe8bzYljWAqgnwhc3SUBzzR6dHEbddDSswW9Cyve5bTVqBdpwLbAE0xN3jN Sedk8bdXTYv1gsj5qeQnAH2v0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXQYI0/ 0JpIZ0c/0DxiJJHOk+6tMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdrF8zlloTAPnLgNOfuo19cd25eTVJNRI8xRjNKogG5ZVkhiur53s5 AdezDjhRhZBhozpn9NEtg9vL7zQo7NI2ibQ/v6/RIVRviCtGbChxWCGD7BdkwBys lrjqomw2+DPsC9giFhLYkmNOcetHgMs4WtQbQ3bPKtaErFWytCcd64oypooY8Irw WR9Rr4AX+T64poaWzyodMM9qeBBUxrJztPE77qFCXTdIDKDB+vq1pONyHnV8NPYA ibbDQO2qVqywJBoMoOq22wJcbnRkH1CpJQD59Tha+95hrHx7Ap90UYMeFRsET1m5 xCF3q9OVnTYkVaLsc8O9BexcFBjXzS0D -----END CERTIFICATE-----Generated at Tue May 13 19:24:04 2025 by rpki-client